FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 1: Computer Systems Overview

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 21

Essay

Review LaterAdd Note

Review Later

The OSI security architecture focuses on security attacks,__________,and services.

Correct Answer

verified

Show Answer

Question 22

Multiple Choice

Review LaterAdd Note

Review Later

A threat action in which sensitive data are directly released to an unauthorized entity is __________.

A) corruption
B) intrusion
C) disruption
D) exposure

Correct Answer

verified

Show Answer

Question 23

True/False

Review LaterAdd Note

The first step in devising security services and mechanisms is to develop a security policy.

The assets of a computer system can be categorized as hardware,software,communication lines and networks,and _________.

A __________ is any action that compromises the security of information owned by an organization.

Data integrity assures that information and programs are changed only in a specified and authorized manner.

Many security administrators view strong security as an impediment to efficient and user-friendly operation of an information system.

A(n)_________ assessment is periodically assessing the risk to organizational operations,organizational assets,and individuals,resulting from the operation of organizational information systems and the associated processing,storage,or transmission or organizational information.

Masquerade,falsification,and repudiation are threat actions that cause __________ threat consequences.

Security implementation involves four complementary courses of action: prevention,detection,response,and _________.

A(n) _________ is an attempt to learn or make use of information from the system that does not affect system resources.

The assurance that data received are exactly as sent by an authorized entity is __________.

Confidentiality,Integrity,and Availability form what is often referred to as the _____.

In the United States,student grade information is an asset whose confidentiality is regulated by the __________.

Release of message contents and traffic analysis are two types of _________ attacks.

A loss of _________ is the unauthorized disclosure of information.

Hardware is the most vulnerable to attack and the least susceptible to automated controls.

Threats are attacks carried out.

A loss of _________ is the disruption of access to or use of information or an information system.

Establishing,maintaining,and implementing plans for emergency response,backup operations,and post disaster recovery for organizational information systems to ensure the availability of critical information resources and continuity of operations in emergency situations is a __________ plan.